You are here

Privacy policy – Campaign newsletter

Organizational part of the Agency entrusted with the processing of personal data

Andrew Smith, Head of Communication and Promotion Unit

Purpose of processing

The data requested on this form is collected for the purpose of sending the EU-OSHA Campaign newsletter, and occasionally, a survey to obtain feedback on the Agency’s performance in relation to the Annual Management Plan and the Multi-annual Strategic Programme. The submitted email addresses are stored in our automated mailing list management application, Listserv.

Type of data processed

Name and surname

E-mail address

Legal basis

Council Regulation (EC) No. 2062/94 of 18/07/1994 establishing the European Agency for Safety and Health at Work and subsequent amendments.

Data recipients

Access to the personal data is granted on the basis of the role and responsibilities of the subjects involved (“need to know” principle):

Duly appointed EU-OSHA staff

External provider hosting and maintaining EU-OSHA’s server

Legal Service, Civil Service Tribunal, the European Data Protection Supervisor, the European Anti-Fraud Office (OLAF), the European Ombudsman, the Court of Auditors, the Internal Audit Service, if applicable.

All the recipients mentioned are bound by Regulation (EC) Nº 45/2001 of the European Parliament and of the Council of 18 December 2000 on the protection of individuals with regard to the processing of personal data by the Community institutions and bodies and on the free movement of such data. EU-OSHA will not divulge personal data for direct marketing for commercial purposes.

EU-OSHA will not divulge personal data for direct marketing for commercial purposes.

The data subject's rights

You have a right to access your personal information, verify its accuracy, or delete it. However, if you have any questions which are not addressed here or in the public section of the website, please contact us at: information@osha.europa.eu, including in the subject the words "data protection".

Security measures

We take appropriate security measures to protect against unauthorised access to or unauthorised alteration, disclosure or destruction of data. These include internal reviews of our data collection, storage and processing practices and security measures, including appropriate encryption of communication and physical security measures to guard against unauthorised access to systems where we store personal data.

Request for information

For any further information regarding the handling of their personal data, data subjects can address their request to EU-OSHA Data Protection Officer at: dpo@osha.europa.eu.

Recourse to the EDPS

Data subjects are entitled to make recourse to the European Data Protection Supervisor: http://www.edps.europa.eu, should they consider that the processing operations do not comply with Regulation (EC) No. 45/2001.